Skip to content

deps(rust): Bump rand from 0.10.1 to 0.10.2#67

Merged
NeuroKoder3 merged 1 commit into
masterfrom
dependabot/cargo/rand-0.10.2
Jul 6, 2026
Merged

deps(rust): Bump rand from 0.10.1 to 0.10.2#67
NeuroKoder3 merged 1 commit into
masterfrom
dependabot/cargo/rand-0.10.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps rand from 0.10.1 to 0.10.2.

Changelog

Sourced from rand's changelog.

[0.10.2] — 2026-07-02

Fixes

  • Fix possible memory safety violation due to deserialization of UniformChar from bad source (#1790)

Changes

  • Document required output order of fn partial_shuffle and apply #[must_use] (#1769)
  • Avoid usage of unsafe in contexts where non-local memory corruption could invalidate contract (#1791)

#1769: rust-random/rand#1769 #1790: rust-random/rand#1790 #1791: rust-random/rand#1791

Commits

@dependabot @github

dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies, rust. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot
dependabot Bot requested a review from NeuroKoder3 as a code owner July 6, 2026 10:44
Bumps [rand](https://github.com/rust-random/rand) from 0.10.1 to 0.10.2.
- [Release notes](https://github.com/rust-random/rand/releases)
- [Changelog](https://github.com/rust-random/rand/blob/master/CHANGELOG.md)
- [Commits](rust-random/rand@0.10.1...0.10.2)

---
updated-dependencies:
- dependency-name: rand
  dependency-version: 0.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/cargo/rand-0.10.2 branch from 2b0612a to b6a91ee Compare July 6, 2026 20:14
@NeuroKoder3
NeuroKoder3 merged commit d191a64 into master Jul 6, 2026
5 checks passed
@dependabot
dependabot Bot deleted the dependabot/cargo/rand-0.10.2 branch July 6, 2026 22:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant